Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-03-29_3895165d4f59b3549533cb47791de933_floxif_icedid

  • Size

    261KB

  • Sample

    240329-ljcbsaea51

  • MD5

    3895165d4f59b3549533cb47791de933

  • SHA1

    ca0ce3fd4540fb992311c6a956fa5f50031031fd

  • SHA256

    991b05513403e27564d5941e85e16ef76a4e00c6399116066642345aba90217d

  • SHA512

    94aee75b0a1dd258e0f88595aca5c1abb81918b53b01d43929de93c52b9774358afd8b099f51be283c202bb251891029549c38dd6dd2e8f453664d614773aef8

  • SSDEEP

    6144:4d9RqPgukPbHMxTYR4WZm1BV+UdvrEFp7hK1+TL:4d9QPgukjHLRO1BjvrEH7EA

Score
9/10

Malware Config

Targets

    • Target

      2024-03-29_3895165d4f59b3549533cb47791de933_floxif_icedid

    • Size

      261KB

    • MD5

      3895165d4f59b3549533cb47791de933

    • SHA1

      ca0ce3fd4540fb992311c6a956fa5f50031031fd

    • SHA256

      991b05513403e27564d5941e85e16ef76a4e00c6399116066642345aba90217d

    • SHA512

      94aee75b0a1dd258e0f88595aca5c1abb81918b53b01d43929de93c52b9774358afd8b099f51be283c202bb251891029549c38dd6dd2e8f453664d614773aef8

    • SSDEEP

      6144:4d9RqPgukPbHMxTYR4WZm1BV+UdvrEFp7hK1+TL:4d9QPgukjHLRO1BjvrEH7EA

    Score
    9/10
    • UPX dump on OEP (original entry point)

    • Modifies AppInit DLL entries

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks